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DETAILED ACTION 

1 . This Office action is in response to the amendment filed on July 16, 2009, entered by the 
RCE filed on the same date. 

2. Claims 1 and 3-72 are pending. 

3. Claims 1, 10, 13, 19, 29, 31-60, and 62 have been amended. 

4. Claim 2 has been canceled. 

5. The objections to Claims 19-30 are withdrawn in view of Applicant's amendments to the 
claims. 

6. The provisional nonstatutory obviousness-type double patenting rejections of Claims 41 
and 62 over copending Application No. 10/677,159 are held in abeyance until allowance of one 
of the copending applications. 

7. The 35 U.S.C. § 1 12, second paragraph, rejections of Claims 52-60 and 62-72 are 
withdrawn in view of Applicant's amendments to the claims. 



Continued Examination Under 37 CFR 1.114 

8. A request for continued examination under 37 CFR 1.114, including the fee set forth in 
37 CFR 1.17(e), was filed in this application after final rejection. Since this application is eligible 
for continued examination under 37 CFR 1.114, and the fee set forth in 37 CFR 1 .17(e) has been 
timely paid, the finality of the previous Office action has been withdrawn pursuant to 37 CFR 
1.1 14. Applicant's submission filed on July 16, 2009 has been entered. 
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Information Disclosure Statement 

9. The information disclosure statement filed on July 16, 2009 has been considered by the 
Examiner. All cited documents identified as "Non-Final Rejection" are considered by the 
Examiner. However, these cited documents are official documents that are sent to Applicants in 
response to examination of patent applications and cannot be listed in a printed patent 
publication. An initial of the Examiner will cause these cited documents to be listed in the 
printed patent publication and therefore, a strikethrough of these cited documents is applied. 

The cited documents considered by the Examiner but will not be listed in the printed 
patent publication are as follows (in no particular order): 

• U.S. Serial No. 10/677,159, Non-Final Rejection dated 04/20/2009, pp. 1-26 and 
attachment 

• U.S. Serial No. 10/676,922, Non-Final Rejection dated 04/15/2009, pp. 1-15 and 
attachment 



Response to Amendment 
Claim Objections 

10. Claims 19, 41, 47, 52, 58, 59, and 62 are objected to because of the following 
informalities: 

• Claims 19, 41, 52, and 62 contain a typographical error: "[B]oot" should read — 
booting — . 

• Claim 47 recites the limitation "the virtualizing means." Applicant is advised to 
change this limitation to read "the virtualizing code" for the purpose of providing it with 
proper explicit antecedent basis. 



Application/Control Number: 10/676,557 Page 4 

Art Unit: 2191 

• Claim 58 contains a typographical error: "[A] dual-mode driver that to perform" 
should read — a dual-mode driver to perform — . 

• Claims 58 and 59 recite the limitation "the hardware." Applicant is advised to 
change this limitation to read "the computer hardware" for the purpose of providing it 
with proper explicit antecedent basis. 

Appropriate correction is required. 



Double Patenting 

1 1 . The nonstatutory double patenting rejection is based on a judicially created doctrine 
grounded in public policy (a policy reflected in the statute) so as to prevent the unjustified or 
improper timewise extension of the "right to exclude" granted by a patent and to prevent possible 
harassment by multiple assignees. A nonstatutory obviousness-type double patenting rejection 
is appropriate where the conflicting claims are not identical, but at least one examined 
application claim is not patentably distinct from the reference claim(s) because the examined 
application claim is either anticipated by, or would have been obvious over, the reference 
claim(s). See, e.g., In re Berg, 140 F.3d 1428, 46 USPQ2d 1226 (Fed. Cir. 1998); In re 
Goodman, 1 1 F.3d 1046, 29 USPQ2d 2010 (Fed. Cir. 1993); In re Longi, 759 F.2d 887, 225 
USPQ 645 (Fed. Cir. 1985); In re Van Ornum, 686 F.2d 937, 214 USPQ 761 (CCPA 1982); In re 
Vogel, 422 F.2d 438, 164 USPQ 619 (CCPA 1970); and In re Thorington, 418 F.2d 528, 163 
USPQ 644 (CCPA 1969). 

A timely filed terminal disclaimer in compliance with 37 CFR 1.321(c) or 1.321(d) may 
be used to overcome an actual or provisional rejection based on a nonstatutory double patenting 
ground provided the conflicting application or patent either is shown to be commonly owned 
with this application, or claims an invention made as a result of activities undertaken within the 
scope of a joint research agreement. 

Effective January 1, 1994, a registered attorney or agent of record may sign a terminal 
disclaimer. A terminal disclaimer signed by the assignee must fully comply with 37 CFR 
3.73(b). 



12. Claims 19, 41, and 62 are provisionally rejected on the ground of nonstatutory 
obviousness-type double patenting as being unpatentable over Claims 17, 38, and 56 of 
copending Application No. 10/676,922 (hereinafter "Application '922"). Although the 
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conflicting claims are not identical, they are not patentably distinct from each other because 
Claims 19, 41, and 62 of the instant application define an obvious variation of the invention 
claimed in copending Application '922. 



Claims 19, 41, and 62 of the instant application are obvious over copending application 
Claims 17, 38, and 56 in that Claims 17, 38, and 56 of the copending application contain all the 
limitations of Claims 19, 41, and 62 of the instant application. Claims 19, 41, and 62 of the 
instant application are, therefore, not patently distinct from the copending application claims and 
as such are unpatentable for obviousness-type double patenting. 



Claims 19, 41, and 62 of the instant application as shown in the tables below contain 
every element of Claims 17, 38, and 56 of the copending application and as such are obvious 
over Claims 17, 38, and 56 of the copending application. 



Copending Application 10/676,922 


Instant Application 10/676,557 


17. In a computer including hardware, a 
method comprising: 


19. A method of using a virtual machine 
monitor and an operating system on virtualized 
computer hardware, the method comprising 


running a virtual machine monitor on the 
hardware; 




running an operating system on the virtual 
machine monitor, 




wherein the hardware includes an I/O device, 
and the I/O device is already virtualized by the 
virtual machine monitor; and 




devirtualizing the I/O device at runtime, 
wherein runtime in a period of execution in the 
computer after boot and before shutdown of 
the computer. 


devirtualizing the virtualized computer 
hardware at runtime of a computer containing 
the virtualized computer hardware, wherein 
runtime includes a period of execution in the 
computer after boot and before shutdown. 
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Copending Application 10/676,922 


Instant Application 10/676,557 


38. A computer comprising: 


41 . A computer comprising: 


hardware including an I/O device; and 


hardware, the hardware including memory, 


computer memory encoded with a virtual 
machine monitor for devirtualizing the I/O 
device at runtime, wherein runtime is a period 
of execution in the computer after boot and 
before shutdown of the computer. 


the memory encoded with code for virtualizing 
the hardware, and code for devirtualizing the 
hardware at runtime, wherein runtime includes 
a period of execution in the computer after 
boot and before shutdown. 




Copending Application 10/676,922 


Instant Application 10/676,557 


56. An article for a computer including an I/O 
device, the article comprising 


62. An article for use with an operating system 
on computer hardware, the article comprising 


computer-readable memory encoded with a 
virtual machine monitor for causing the 
computer to devirtualize the I/O device at 
runtime, wherein runtime is a period of 
execution in the computer after boot and before 
shutdown of the computer. 


a computer-readable storage medium storing 
software that when executed by a computer 
causes the computer to devirtualize at least a 
portion of virtualized hardware at runtime, 
wherein runtime is a period of execution in the 
computer after boot and before shutdown. 



This is a provisional obviousness-type double patenting rejection because the conflicting 
claims have not in fact been patented. 



Claim Rejections - 35 USC § 102 
13. The following is a quotation of the appropriate paragraphs of 35 U.S. C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by another filed 
in the United States before the invention by the applicant for patent or (2) a patent granted on an application for 
patent by another filed in the United States before the invention by the applicant for patent, except that an 
international application filed under the treaty defined in section 351(a) shall have the effects for purposes of this 
subsection of an application filed in the United States only if the international application designated the United 
States and was published under Article 21(2) of such treaty in the English language. 
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14. Claims 1, 3-60, and 62-72 are rejected under 35 U.S.C. 102(e) as being anticipated by 
US 6,961,941 (hereinafter "Nelson"). 

As per Claim 1, Nelson discloses: 

interposing the virtual machine monitor between the computer hardware and the 
operating system at runtime, wherein the interposing occurs after booting of the computer (see 
Abstract, "The COS is used to boot the system as a whole. After booting, the kernel is loaded ..." 
and "In the preferred embodiment of the invention, at least one virtual machine (VM) runs via a 
virtual machine monitor, which is installed to run on the kernel. "; Column 1: 58-64, "A VMM is 
usually a thin piece of software that runs directly on top of a host, or directly on the hardware, 
and virtualizes all, or at least some of, the resources of the machine. The interface exported to 
the VM is then the same as the hardware interface of the machine, or at least of some machine, 
so that the virtual OS cannot determine the presence of the VMM. "; Column 2: 1-7, "In some 
conventional systems, the VMM runs directly on the underlying hardware, and will thus act as 
the "host" operating system for its associated VM. In other prior art systems, the host operating 
system is interposed as a software layer between the VMM and the hardware. The 
implementation and general features of a VMM are known in the art. "; Column 3: 1-16, "The 
primary procedures that the system according to the invention performs are: 1) Initializing the 
computer using a first operating system (COS), which may be a commodity operating system ... 
2) loading a kernel via the COS, the kernel forming a second operating system; 3) starting 
execution of the kernel ..." and 48-50, "In the preferred embodiment of the invention, at least 
one virtual machine (VM) is installed to run on the kernel via a virtual machine monitor 
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(VMM). "); [Examiner's Remarks: Note that the virtual machine monitor is run on the kernel and 
the kernel is loaded after booting of the computer system. Thus, one of ordinary skill in the art 
would readily comprehend that the interposing of the virtual machine monitor occurs after 
booting of the computer system.] and 

- booting the operating system on the computer hardware before interposing the virtual 
machine monitor at runtime (see Column 18: 10-12,, "1) Booting the machine. As is mentioned 
above, the COS brings up the machine in uniprocessor mode. Once the machine is booted, the 
kernel 600 can be loaded. "). [Examiner's Remarks: Note that the COS is used to boot the 
computer system. Then, the virtual machine monitor is interposed after the kernel is loaded.] 

As per Claim 3, the rejection of Claim 1 is incorporated; and Nelson further discloses: 

- booting the virtual machine monitor on the computer hardware, booting the operating 
system on the virtual machine monitor, and devirtualizing the computer hardware before 
interposing the virtual machine monitor at runtime (see Abstract, "The COS is used to boot the 
system as a whole. After booting, the kernel is loaded ..." and "In the preferred embodiment of 
the invention, at least one virtual machine (VM) runs via a virtual machine monitor, which is 
installed to run on the kernel. "; Column 2: 1-7, "In some conventional systems, the VMM runs 
directly on the underlying hardware, and will thus act as the "host" operating system for its 
associated VM. In other prior art systems, the host operating system is interposed as a software 
layer between the VMM and the hardware. The implementation and general features of a VMM 
are known in the art. "). [Examiner's Remarks: Note that before the virtual machine monitor is 
interposed, the computer hardware is not virtualized ("devirtualized").] 
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As per Claim 4, the rejection of Claim 1 is incorporated; and Nelson further discloses: 
devirtualizing the computer hardware after the virtual machine monitor has been 
interposed (see Abstract, "The COS is used to boot the system as a whole. After booting, the 
kernel is loaded ..." and "In the preferred embodiment of the invention, at least one virtual 
machine (VM) runs via a virtual machine monitor, which is installed to run on the kernel. "; 
Column 5: 18-25, "In particular, during the unloading procedure, the step of reinstating the 
state of the first operating system involves the following sub-steps: first, restoring interrupt and 
fault handling from the kernel to the first operating system; second, transferring control of host- 
managed and shared devices from the kernel to the first operating system; and third, removing 
the kernel from an address space of the first operating system. "). [Examiner's Remarks: Note 
that the virtual machine monitor is run on the kernel and the kernel is loaded after booting of the 
computer system. Thus, one of ordinary skill in the art would readily comprehend that after the 
kernel is unloaded, the virtual machine monitor is no longer running and thereby, is in effect 
"devirtualized."] 

As per Claim 5, the rejection of Claim 1 is incorporated; and Nelson further discloses: 
- wherein the computer hardware includes a CPU; and wherein the virtual machine 
monitor is interposed on the CPU (see Column I: 26-34, "As is well known in the field of 
computer science, a virtual machine (VM) is a software abstraction— a "visualization "—of an 
actual physical computer system. As such, each VMwill typically include a virtual CPU ... "; 
Column 2: 1-7, "In some conventional systems, the VMM runs directly on the underlying 
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hardware, and will thus act as the "host" operating system for its associated VM. In other prior 
art systems, the host operating system is interposed as a software layer between the VMM and 
the hardware. The implementation and general features of a VMM are known in the art. "). 

As per Claim 6, the rejection of Claim 5 is incorporated; and Nelson further discloses: 
- wherein the computer hardware further includes memory, and the virtual machine 
monitor and the operating system each include CPU interrupt handlers; and wherein interposing 
the virtual machine monitor on the CPU includes causing privileged instructions to trap to the 
virtual machine monitor, and redirecting interrupts from the operating system interrupt handlers 
to the corresponding virtual machine monitor interrupt handlers (see Column 1: 26-34, "As is 
well known in the field of computer science, a virtual machine (VM) is a software abstraction-a 
"visualization "—of an actual physical computer system. As such, each VM will typically include 
a virtual CPU, a virtual mass storage disk, a virtual system memory ... "; Column 10: 49-55, 
"Worlds run at CPLO (following the nomenclature used in the x86 architecture), that is, with full 
rights to invoke any privileged CPU operations. A VMM, which, along with its VM, constitutes a 
separate world, therefore may use these privileged instructions to allow it to run its associated 
VM so that it performs just like a corresponding "real" computer, even with respect to privileged 
operations. "; Column 19: 62-65, "Each VMM 300 preferably maintains its own interrupt 
descriptor table IDT and handler 302, which takes all interrupts that occur while the VMM 
world is running. The VMM should maintain its own IDT 302 for several reasons. "). 

As per Claim 7, the rejection of Claim 6 is incorporated; and Nelson further discloses: 
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- wherein the privileged instructions are caused to trap to the virtual machine monitor 
by causing the operating system to run at a reduced privilege level; and wherein interposing the 
virtual machine monitor on the CPU further includes returning control to the operating system at 
the reduced privilege level (see Column 3: 5-16, "1) Initializing the computer using a first 
operating system (COS), which may be a commodity operating system. The COS itself is then 
running at a most-privileged, system level, the system level being defined as an operational state 
with permission to directly access predetermined physical resources of the computer; 2) loading 
a kernel via the COS, the kernel forming a second operating system; 3) starting execution of the 
kernel, the kernel thereupon substantially displacing the COS from the system level and itself 
running at the system level; and 4) submitting requests for system resources via the kernel. "). 

As per Claim 8, the rejection of Claim 6 is incorporated; and Nelson further discloses: 

- wherein the privileged instructions are caused to trap to the virtual machine monitor 
by using a kernel module of the operating system to reduce a privilege level of the operating 
system (see Column 3: 5-16, "1) Initializing the computer using a first operating system (COS), 
which may be a commodity operating system. The COS itself is then running at a most- 
privileged, system level, the system level being defined as an operational state with permission to 
directly access predetermined physical resources of the computer; 2) loading a kernel via the 
COS, the kernel forming a second operating system; 3) starting execution of the kernel, the 
kernel thereupon substantially displacing the COS from the system level and itself running at the 
system level; and 4) submitting requests for system resources via the kernel. "). 
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As per Claim 9, the rejection of Claim 6 is incorporated; and Nelson further discloses: 

- wherein interposing the virtual machine monitor on the CPU further includes 
disabling physical memory access by the operating system (see Column 50-57, "The kernel 
thereby separately schedules the execution of the COS and of each VM; the COS and the VM's 
thereby form separately schedulable and separately executing entities. Within the kernel, each 
schedulable is preferably represented entity as a corresponding "world, " where each world 
comprises a world memory region with a respective world address space in which is stored a 
respective world control thread. "). 

As per Claim 10, the rejection of Claim 6 is incorporated; and Nelson further discloses: 

- wherein interposing the virtual machine monitor on the CPU further includes loading 
the virtual machine monitor into the memory (see Abstract, "The COS is used to boot the system 
as a whole. After booting, the kernel is loaded ..." and "In the preferred embodiment of the 
invention, at least one virtual machine (VM) runs via a virtual machine monitor, which is 
installed to run on the kernel. "). 

As per Claim 11, the rejection of Claim 10 is incorporated; and Nelson further discloses: 

- wherein a kernel module of the operating system is used to allocate memory within 
the operating system, pin the allocated memory, and load the virtual machine monitor into the 
pinned memory (see Column 3: 22-28, "The step of loading the kernel then involves setting, via 
the loading module, the hardware instruction pointer and forwarding of interrupts and faults 
generated by the processor and by predetermined ones of the physical resources to point into a 
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memory address space allocated to and controlled by the kernel. "; Column 4: 57-62, "In 
computers that have a segmented memory architecture, the memory is addressable via segment 
registers. The segment length for the VMM is then set large enough, for example, 20 megabytes, 
that the kernel address space may be mapped within the VMM address space with no need to 
change a corresponding segment register. "). 

As per Claim 12, the rejection of Claim 5 is incorporated; and Nelson further discloses: 

- wherein the computer hardware includes memory; and wherein the virtual machine 
monitor is also interposed on the memory (see Column 1: 26-34, "As is well known in the field of 
computer science, a virtual machine (VM) is a software abstraction— a "visualization "—of an 
actual physical computer system. As such, each VM will typically include a virtual CPU, a 
virtual mass storage disk, a virtual system memory ... "; Column 2: 1-7, "In some conventional 
systems, the VMM runs directly on the underlying hardware, and will thus act as the "host" 
operating system for its associated VM. In other prior art systems, the host operating system is 
interposed as a software layer between the VMM and the hardware. The implementation and 
general features of a VMM are known in the art. "). 

As per Claim 13, the rejection of Claim 12 is incorporated; and Nelson further discloses: 

- wherein interposing the virtual machine monitor on the memory includes partitioning 
the memory to provide partitions, and giving the virtual machine monitor access to at least one of 
the partitions (see Column 4: 63-67 to Column 5: 1-7, "Each VMwill typically include a virtual 
processor, a virtual operating system (VOS), and a virtual disk (VDISK). The invention thereby 
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provides for partitioning the VDISK into VDISK blocks and maintaining an array ofVDISK 
block pointers, which stores sets of VDISK block pointers. A file descriptor table is maintained 
within the kernel and stores file descriptors, each storing block identification and allocation 
information, and at least one pointer block pointer. Each pointer block pointer points to one of 
the sets of VDISK block pointers and each VDISK block pointer identifies the location of a 
respective one of the VDISK blocks. "). 

As per Claim 14, the rejection of Claim 12 is incorporated; and Nelson further discloses: 
- wherein interposing the virtual machine monitor on the memory includes using a 
kernel module of the operating system to allocate a block of the memory, pin the block to 
prevent the operating system from using the block, and allocate the pinned block to the virtual 
machine monitor (see Column 3: 22-28, "The step of loading the kernel then involves setting, via 
the loading module, the hardware instruction pointer and forwarding of interrupts and faults 
generated by the processor and by predetermined ones of the physical resources to point into a 
memory address space allocated to and controlled by the kernel. "; Column 4: 57-62, "In 
computers that have a segmented memory architecture, the memory is addressable via segment 
registers. The segment length for the VMM is then set large enough, for example, 20 megabytes, 
that the kernel address space may be mapped within the VMM address space with no need to 
change a corresponding segment register. "). 

As per Claim 15, the rejection of Claim 12 is incorporated; and Nelson further discloses: 
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- wherein interposing the virtual machine monitor on the memory includes 
commencing using the virtual machine monitor at runtime to manage memory translation (see 
Column 4: 52-56, "In the preferred embodiment of the invention, which includes a VM and a 
VMM, the kernel address space, within which the kernel is stored and which is addressable by 
the kernel, is mapped into a VMM address space, within which the VMM is stored and which is 
addressable by the VMM. "). 

As per Claim 16, the rejection of Claim 5 is incorporated; and Nelson further discloses: 
wherein the computer hardware includes an I/O device, and wherein the virtual 
machine monitor is also interposed on the I/O device (see Column 1: 26-34, "As is well known in 
the field of computer science, a virtual machine (VM) is a software abstraction— a 
"visualization "—of an actual physical computer system. As such, each VM will typically include 
a virtual CPU, a virtual mass storage disk, a virtual system memory, a virtual operating system 
(which may simply be a copy of a conventional operating system), and various virtual devices 
such as a network connector, in which case the virtual operating system will include 
corresponding drivers. "; Column 2: 1-7, "In some conventional systems, the VMM runs directly 
on the underlying hardware, and will thus act as the "host" operating system for its associated 
VM. In other prior art systems, the host operating system is interposed as a software layer 
between the VMM and the hardware. The implementation and general features of a VMM are 
known in the art. "). 

As per Claim 17, the rejection of Claim 16 is incorporated; and Nelson further discloses: 
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- wherein the operating system includes a dual-mode driver that performs direct 
hardware control in a first mode and communicates with a device driver of the virtual machine 
monitor in a second mode; and wherein interposing the virtual machine monitor on the I/O 
device includes setting the dual-mode driver to the second mode; and redirecting I/O interrupts 
from interrupt handlers in the operating system to interrupt handlers in the virtual machine 
monitor (see Column 6: 1-5, "The OS can directly access various hardware resources such as 
the system disk, system memory, I/O ports, input and display devices, various other peripherals, 
etc., usually using drivers installed within the OS itself. "; Column 19: 62-65, "Each VMM 300 
preferably maintains its own interrupt descriptor table IDT and handler 302, which takes all 
interrupts that occur while the VMM world is running. The VMM should maintain its own IDT 
302 for several reasons. "; Column 25: 19-30, "The VMM 300 is responsible for emulating the 
network device associated with the driver 223, which implies that it must field IN and OUT 
operations as well as raise interrupts. During initialization, the VMM's emulation module 323 
also indicates to the kernel where the shared memory is physically located, gets the unique 
network address, and sets receive and transmit queue sizes. These steps can all be implemented 
using know programming techniques. Note that, for transmits, the VMM merely has to handle the 
IN operation, call the kernel to do the transmit, and then return the status of the transmit to the 
VM. For receives, the VMM needs only to raise an interrupt to the VM. "). 

As per Claim 18, the rejection of Claim 16 is incorporated; and Nelson further discloses: 

- wherein interposing the virtual machine monitor on the I/O device includes 
commencing I/O emulation of the I/O device at runtime (see Column 7: 18-22, "For example, 
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the VMM may be set up with a module that emulates a standard Ethernet network device, 
whereas the underlying, actual, physical network connection may be something else. "). 

As per Claim 19, Nelson discloses: 

devirtualizing the virtualized computer hardware at runtime of a computer containing 
the virtualized computer hardware, wherein runtime includes a period of execution in the 
computer after booting and before shutdown (see Abstract, "The COS is used to boot the system 
as a whole. After booting, the kernel is loaded ..." and "In the preferred embodiment of the 
invention, at least one virtual machine (VM) runs via a virtual machine monitor, which is 
installed to run on the kernel. "; Column 5: 18-25, "In particular, during the unloading 
procedure, the step of reinstating the state of the first operating system involves the following 
sub-steps: first, restoring interrupt and fault handling from the kernel to the first operating 
system; second, transferring control of host-managed and shared devices from the kernel to the 
first operating system; and third, removing the kernel from an address space of the first 
operating system. "; Column 3: 1-16, "The primary procedures that the system according to the 
invention performs are: 1) Initializing the computer using a first operating system (COS), which 
may be a commodity operating system ...2) loading a kernel via the COS, the kernel forming a 
second operating system; 3) starting execution of the kernel ..." and 48-50, "In the preferred 
embodiment of the invention, at least one virtual machine (VM) is installed to run on the kernel 
via a virtual machine monitor (VMM). "). [Examiner's Remarks: Note that the virtual machine 
monitor is run on the kernel and the kernel is loaded after booting of the computer system. Thus, 
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one of ordinary skill in the art would readily comprehend that after the kernel is unloaded, the 
virtual machine monitor is no longer running and thereby, is in effect "devirtualized."] 

As per Claim 20, the rejection of Claim 19 is incorporated; and Nelson further discloses: 

- wherein the virtualized computer hardware includes a CPU; and wherein the CPU is 
devirtualized at runtime (see Column 1: 26-34, "As is well known in the field of computer 
science, a virtual machine (VM) is a software abstraction-a "visualization "-of an actual 
physical computer system. As such, each VM will typically include a virtual CPU ... "; Column 
5: 18-25, "In particular, during the unloading procedure, the step of reinstating the state of the 
first operating system involves the following sub-steps: first, restoring interrupt and fault 
handling from the kernel to the first operating system; second, transferring control of host- 
managed and shared devices from the kernel to the first operating system; and third, removing 
the kernel from an address space of the first operating system. "). 

As per Claim 21, the rejection of Claim 20 is incorporated; and Nelson further discloses: 

- wherein the virtualized computer hardware further includes physical memory, and the 
virtual machine monitor and the operating system each include CPU interrupt handlers; and 
wherein devirtualizing the CPU includes redirecting interrupts from the virtual machine monitor 
interrupt handlers to the corresponding operating system interrupt handlers (see Column 1: 26- 
34, "As is well known in the field of computer science, a virtual machine (VM) is a software 
abstraction-a "visualization" -of an actual physical computer system. As such, each VMwill 
typically include a virtual CPU, a virtual mass storage disk, a virtual system memory ... "; 
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Column 5: 18-25, "In particular, during the unloading procedure, the step of reinstating the 
state of the first operating system involves the following sub-steps: first, restoring interrupt and 
fault handling from the kernel to the first operating system; second, transferring control of host- 
managed and shared devices from the kernel to the first operating system; and third, removing 
the kernel from an address space of the first operating system. "). 

As per Claim 22, the rejection of Claim 21 is incorporated; and Nelson further discloses: 

- wherein devirtualizing the CPU further includes restoring privilege level of the 
operating system (see Column 5: 8-1 7, "It is also possible according to the invention to unload 
the kernel so as to return the computer even to the state it would have been in had the kernel 
never been loaded at all. To do this, the following procedure is carried out by the kernel itself 
and also by the loader (acting as an "unloader"): halting execution of the kernel; reinstating a 
state of the first operating system that existed before the loading of the kernel; and resuming 
execution of the first operating system at the most-privileged system level. The kernel will then be 
functionally removed from the computer. "). 

As per Claim 23, the rejection of Claim 21 is incorporated; and Nelson further discloses: 

- wherein devirtualizing the CPU further includes enabling physical memory access by 
the operating system (see Column 5: 18-25, "In particular, during the unloading procedure, the 
step of reinstating the state of the first operating system involves the following sub-steps: first, 
restoring interrupt and fault handling from the kernel to the first operating system; second, 
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transferring control of host-managed and shared devices from the kernel to the first operating 
system; and third, removing the kernel from an address space of the first operating system. "). 

As per Claim 24, the rejection of Claim 21 is incorporated; and Nelson further discloses: 

- wherein devirtualizing the CPU further includes unloading the virtual machine 
monitor from the physical memory (see Abstract, "The COS is used to boot the system as a 
whole. After booting, the kernel is loaded ..." and "In the preferred embodiment of the invention, 
at least one virtual machine (VM) runs via a virtual machine monitor, which is installed to run 
on the kernel. "; Column 5: 18-25, "In particular, during the unloading procedure, the step of 
reinstating the state of the first operating system involves the following sub-steps: first, restoring 
interrupt and fault handling from the kernel to the first operating system; second, transferring 
control of host-managed and shared devices from the kernel to the first operating system; and 
third, removing the kernel from an address space of the first operating system. "). 

As per Claim 25, the rejection of Claim 19 is incorporated; and Nelson further discloses: 

- wherein the virtualized computer hardware includes memory; and wherein the 
memory is devirtualized at runtime (see Column I: 26-34, "As is well known in the field of 
computer science, a virtual machine (VM) is a software abstraction— a "visualization "—of an 
actual physical computer system. As such, each VMwill typically include a virtual CPU, a 
virtual mass storage disk, a virtual system memory ... "; Column 5: 18-25, "In particular, during 
the unloading procedure, the step of reinstating the state of the first operating system involves 
the following sub-steps: first, restoring interrupt and fault handling from the kernel to the first 
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operating system; second, transferring control of host-managed and shared devices from the 
kernel to the first operating system; and third, removing the kernel from an address space of the 
first operating system. "). 

As per Claim 26, the rejection of Claim 25 is incorporated; and Nelson further discloses: 

- wherein memory was allocated from the operating system to the virtual machine 
monitor during virtualization of the memory; and wherein devirtualizing the memory includes 
returning the allocated memory to the operating system (see Column 4: 57-62, "In computers 
that have a segmented memory architecture, the memory is addressable via segment registers. 
The segment length for the VMM is then set large enough, for example, 20 megabytes, that the 
kernel address space may be mapped within the VMM address space with no need to change a 
corresponding segment register. "; Column 5: 18-25, "In particular, during the unloading 
procedure, the step of reinstating the state of the first operating system involves the following 
sub-steps: first, restoring interrupt and fault handling from the kernel to the first operating 
system; second, transferring control of host-managed and shared devices from the kernel to the 
first operating system; and third, removing the kernel from an address space of the first 
operating system. "). 

As per Claim 27, the rejection of Claim 25 is incorporated; and Nelson further discloses: 

- wherein devirtualizing the memory includes remapping physical memory and using 
the operating system to manage address translation with respect to the devirtualized memory (see 
Column 4: 52-56, "In the preferred embodiment of the invention, which includes a VM and a 
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VMM, the kernel address space, within which the kernel is stored and which is addressable by 
the kernel, is mapped into a VMM address space, within which the VMM is stored and which is 
addressable by the VMM. "). 

As per Claim 28, the rejection of Claim 19 is incorporated; and Nelson further discloses: 

- wherein the virtualized computer hardware includes an I/O device, and wherein the 
I/O device is devirtualized at runtime (see Column 1: 26-34, "As is well known in the field of 
computer science, a virtual machine (VM) is a software abstraction— a "virtualization "—of an 
actual physical computer system. As such, each VM will typically include a virtual CPU, a 
virtual mass storage disk, a virtual system memory, a virtual operating system (which may 
simply be a copy of a conventional operating system), and various virtual devices such as a 
network connector, in which case the virtual operating system will include corresponding 
drivers. "; Column 5: 18-25, "In particular, during the unloading procedure, the step of 
reinstating the state of the first operating system involves the following sub-steps: first, restoring 
interrupt and fault handling from the kernel to the first operating system; second, transferring 
control of host-managed and shared devices from the kernel to the first operating system; and 
third, removing the kernel from an address space of the first operating system. "). 

As per Claim 29, the rejection of Claim 28 is incorporated; and Nelson further discloses: 

- wherein the operating system includes a dual-mode driver that performs direct 
hardware control in a first mode and communicates with a device driver of the virtual machine 
monitor in a second mode; and wherein devirtualizing the I/O device includes setting the dual- 
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mode driver to the first mode, and redirecting I/O interrupts from handlers in the virtual machine 
monitor to handlers in the operating system (see Column 6: 1-5, "The OS can directly access 
various hardware resources such as the system disk, system memory, I/O ports, input and display 
devices, various other peripherals, etc., usually using drivers installed within the OS itself. "; 
Column 19: 62-65, "Each VMM 300 preferably maintains its own interrupt descriptor table IDT 
and handler 302, which takes all interrupts that occur while the VMM world is running. The 
VMM should maintain its own IDT 302 for several reasons. "; Column 25: 19-30, "The VMM 
300 is responsible for emulating the network device associated with the driver 223, which 
implies that it must field IN and OUT operations as well as raise interrupts. During 
initialization, the VMM's emulation module 323 also indicates to the kernel where the shared 
memory is physically located, gets the unique network address, and sets receive and transmit 
queue sizes. These steps can all be implemented using know programming techniques. Note that, 
for transmits, the VMM merely has to handle the IN operation, call the kernel to do the transmit, 
and then return the status of the transmit to the VM. For receives, the VMM needs only to raise 
an interrupt to the VM. "). 

As per Claim 30, the rejection of Claim 28 is incorporated; and Nelson further discloses: 
- wherein devirtualizing the I/O device includes ceasing emulation of the I/O device at 
runtime (see Column 5: 18-25, "In particular, during the unloading procedure, the step of 
reinstating the state of the first operating system involves the following sub-steps: first, restoring 
interrupt and fault handling from the kernel to the first operating system; second, transferring 
control of host-managed and shared devices from the kernel to the first operating system; and 
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third, removing the kernel from an address space of the first operating system. "; Column 7: 18- 
22, "For example, the VMM may be set up with a module that emulates a standard Ethernet 
network device, whereas the underlying, actual, physical network connection may be something 
else. "). 

As per Claim 31, Nelson discloses: 

hardware, the hardware including memory, the memory encoded with an operating 
system, a virtual machine monitor, and code for interposing the virtual machine monitor between 
the operating system and the hardware at runtime, wherein the interposing occurs after booting 
of the computer (see Figure 1: 130; Abstract, "The COS is used to boot the system as a whole. 
After booting, the kernel is loaded ..." and "In the preferred embodiment of the invention, at 
least one virtual machine (VM) runs via a virtual machine monitor, which is installed to run on 
the kernel. "; Column 1: 58-64, "A VMM is usually a thin piece of software that runs directly on 
top of a host, or directly on the hardware, and virtualizes all, or at least some of, the resources 
of the machine. The interface exported to the VM is then the same as the hardware interface of 
the machine, or at least of some machine, so that the virtual OS cannot determine the presence of 
the VMM. "; Column 2: 1-7, "In some conventional systems, the VMM runs directly on the 
underlying hardware, and will thus act as the "host" operating system for its associated VM. In 
other prior art systems, the host operating system is interposed as a software layer between the 
VMM and the hardware. The implementation and general features of a VMM are known in the 
art. "; Column 3: 1-16, "The primary procedures that the system according to the invention 
performs are: 1) Initializing the computer using a first operating system (COS), which may be a 
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commodity operating system ...2) loading a kernel via the COS, the kernel forming a second 
operating system; 3) starting execution of the kernel ..." and 48-50, "In the preferred 
embodiment of the invention, at least one virtual machine (VM) is installed to run on the kernel 
via a virtual machine monitor (VMM). "), [Examiner's Remarks: Note that the virtual machine 
monitor is run on the kernel and the kernel is loaded after booting of the computer system. Thus, 
one of ordinary skill in the art would readily comprehend that the interposing of the virtual 
machine monitor occurs after booting of the computer system.] 

- wherein the operating system is to be booted in the computer before interposing the 
virtual machine monitor (see Column 18: 10-12,, "I) Booting the machine. As is mentioned 
above, the COS brings up the machine in uniprocessor mode. Once the machine is booted, the 
kernel 600 can be loaded. "). [Examiner's Remarks: Note that the COS is used to boot the 
computer system. Then, the virtual machine monitor is interposed after the kernel is loaded.] 

As per Claim 32, the rejection of Claim 31 is incorporated; and Nelson further discloses: 

- wherein the hardware further includes a CPU, and the virtual machine monitor and 
the operating system each include CPU interrupt handlers; and wherein the interposing code is to 
cause privileged instructions to trap to the virtual machine monitor, and to redirect interrupts and 
traps from the operating system interrupt handlers to the corresponding virtual machine monitor 
interrupt handlers, whereby the virtual machine monitor is interposed on the CPU at runtime (see 
Column 1: 26-34, "As is well known in the field of computer science, a virtual machine (VM) is a 
software abstraction— a "virtualization"-of an actual physical computer system. As such, each 
VMwill typically include a virtual CPU ... "; Column 10: 49-55, "Worlds run at CPLO 
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(following the nomenclature used in the x86 architecture), that is, with full rights to invoke any 
privileged CPU operations. A VMM, which, along with its VM, constitutes a separate world, 
therefore may use these privileged instructions to allow it to run its associated VM so that it 
performs just like a corresponding "real" computer, even with respect to privileged 
operations. "; Column 19: 62-65, "Each VMM 300 preferably maintains its own interrupt 
descriptor table IDT and handler 302, which takes all interrupts that occur while the VMM 
world is running. The VMM should maintain its own IDT 302 for several reasons. "). 

As per Claim 33, the rejection of Claim 32 is incorporated; and Nelson further discloses: 
- wherein the interposing code is to cause privileged instructions to trap to the virtual 
machine monitor by causing the operating system to run at a reduced privilege level; and 
wherein the interposing code is to reduce a privilege level of the operating system after 
redirecting the interrupts, and to return control to the operating system at the reduced privilege 
level (see Column 3: 5-16, "I) Initializing the computer using a first operating system (COS), 
which may be a commodity operating system. The COS itself is then running at a most- 
privileged, system level, the system level being defined as an operational state with permission to 
directly access predetermined physical resources of the computer; 2) loading a kernel via the 
COS, the kernel forming a second operating system; 3) starting execution of the kernel, the 
kernel thereupon substantially displacing the COS from the system level and itself running at the 
system level; and 4) submitting requests for system resources via the kernel. "). 



As per Claim 34, the rejection of Claim 32 is incorporated; and Nelson further discloses: 



Application/Control Number: 10/676,557 Page 27 

Art Unit: 2191 

- wherein the interposing code includes a kernel module of the operating system for 
reducing a privilege level of the operating system, whereby the privileged instructions trap to the 
virtual machine monitor (see Column 3: 5-16, "1) Initializing the computer using a first 
operating system (COS), which may be a commodity operating system. The COS itself is then 
running at a most-privileged, system level, the system level being defined as an operational state 
with permission to directly access predetermined physical resources of the computer; 2) loading 
a kernel via the COS, the kernel forming a second operating system; 3) starting execution of the 
kernel, the kernel thereupon substantially displacing the COS from the system level and itself 
running at the system level; and 4) submitting requests for system resources via the kernel. "). 

As per Claim 35, the rejection of Claim 32 is incorporated; and Nelson further discloses: 

- wherein the interposing code is to disable physical memory access by the operating 
system (see Column 50-57, "The kernel thereby separately schedules the execution of the COS 
and of each VM; the COS and the VM's thereby form separately schedulable and separately 
executing entities. Within the kernel, each schedulable is preferably represented entity as a 
corresponding "world, " where each world comprises a world memory region with a respective 
world address space in which is stored a respective world control thread. "). 

As per Claim 36, the rejection of Claim 31 is incorporated; and Nelson further discloses: 

- wherein the interposing code includes a kernel module of the operating system for 
allocating a block of the memory, pinning the block to prevent the operating system from using 
the block, and allocating the pinned block to the virtual machine monitor, whereby the virtual 
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machine monitor is interposed on the memory at runtime (see Column 3: 22-28, "The step of 
loading the kernel then involves setting, via the loading module, the hardware instruction pointer 
and forwarding of interrupts and faults generated by the processor and by predetermined ones of 
the physical resources to point into a memory address space allocated to and controlled by the 
kernel. "; Column 4: 57-62, "In computers that have a segmented memory architecture, the 
memory is addressable via segment registers. The segment length for the VMM is then set large 
enough, for example, 20 megabytes, that the kernel address space may be mapped within the 
VMM address space with no need to change a corresponding segment register. "). 

As per Claim 37, the rejection of Claim 31 is incorporated; and Nelson further discloses: 

- wherein the interposing code is to commence using the virtual machine monitor at 
runtime to manage memory translation, whereby the virtual machine monitor is interposed on the 
memory at runtime (see Column 4: 52-56, "In the preferred embodiment of the invention, which 
includes a VM and a VMM, the kernel address space, within which the kernel is stored and 
which is addressable by the kernel, is mapped into a VMM address space, within which the VMM 
is stored and which is addressable by the VMM. "). 

As per Claim 38, the rejection of Claim 31 is incorporated; and Nelson further discloses: 

- wherein the hardware further includes an I/O device; and wherein the interposing 
code includes an operating system dual-mode driver to perform direct hardware control in a first 
mode and to communicate with a device driver of the virtual machine monitor in a second mode; 
and wherein the interposing code is to set the dual-mode driver to the second mode, and to direct 



Application/Control Number: 10/676,557 Page 29 

Art Unit: 2191 

I/O interrupts from interrupt handlers in the operating system to interrupt handlers in the virtual 
machine monitor, whereby the virtual machine monitor is interposed on the I/O device at runtime 
(see Column 1: 26-34, "As is well known in the field of computer science, a virtual machine 
(VM) is a software abstraction— a "visualization"— of an actual physical computer system. As 
such, each VM will typically include a virtual CPU, a virtual mass storage disk, a virtual system 
memory, a virtual operating system (which may simply be a copy of a conventional operating 
system), and various virtual devices such as a network connector, in which case the virtual 
operating system will include corresponding drivers. "; Column 6: 1-5, "The OS can directly 
access various hardware resources such as the system disk, system memory, I/O ports, input and 
display devices, various other peripherals, etc., usually using drivers installed within the OS 
itself. "; Column 19: 62-65, "Each VMM 300 preferably maintains its own interrupt descriptor 
table IDT and handler 302, which takes all interrupts that occur while the VMM world is 
running. The VMM should maintain its own IDT 302 for several reasons. "; Column 25: 19-30, 
"The VMM 300 is responsible for emulating the network device associated with the driver 223, 
which implies that it must field IN and OUT operations as well as raise interrupts. During 
initialization, the VMM's emulation module 323 also indicates to the kernel where the shared 
memory is physically located, gets the unique network address, and sets receive and transmit 
queue sizes. These steps can all be implemented using know programming techniques. Note that, 
for transmits, the VMM merely has to handle the IN operation, call the kernel to do the transmit, 
and then return the status of the transmit to the VM. For receives, the VMM needs only to raise 
an interrupt to the VM. "). 
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As per Claim 39, the rejection of Claim 31 is incorporated; and Nelson further discloses: 
- wherein the hardware further includes an I/O device; and wherein the operating 
system includes a dual-mode driver to perform direct hardware control in a first mode and to 
communicate with a device driver of the virtual machine monitor in a second mode; and wherein 
the interposing code is to set the dual-mode driver to the second mode, and to redirect I/O 
interrupts from interrupt handlers in the operating system to interrupt handlers in the virtual 
machine monitor, whereby the virtual machine monitor is interposed on the I/O device (see 
Column 1: 26-34, "As is well known in the field of computer science, a virtual machine (VM) is a 
software abstraction— a "visualization"— of an actual physical computer system. As such, each 
VMwill typically include a virtual CPU, a virtual mass storage disk, a virtual system memory, a 
virtual operating system (which may simply be a copy of a conventional operating system), and 
various virtual devices such as a network connector, in which case the virtual operating system 
will include corresponding drivers. "; Column 6: 1-5, "The OS can directly access various 
hardware resources such as the system disk, system memory, I/O ports, input and display 
devices, various other peripherals, etc., usually using drivers installed within the OS itself. "; 
Column 19: 62-65, "Each VMM 300 preferably maintains its own interrupt descriptor table IDT 
and handler 302, which takes all interrupts that occur while the VMM world is running. The 
VMM should maintain its own IDT 302 for several reasons. "; Column 25: 19-30, "The VMM 
300 is responsible for emulating the network device associated with the driver 223, which 
implies that it must field IN and OUT operations as well as raise interrupts. During 
initialization, the VMM's emulation module 323 also indicates to the kernel where the shared 
memory is physically located, gets the unique network address, and sets receive and transmit 
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queue sizes. These steps can all be implemented using know programming techniques. Note that, 
for transmits, the VMM merely has to handle the IN operation, call the kernel to do the transmit, 
and then return the status of the transmit to the VM. For receives, the VMM needs only to raise 
an interrupt to the VM. "). 

As per Claim 40, the rejection of Claim 31 is incorporated; and Nelson further discloses: 
- wherein the hardware further includes an I/O device; and wherein the interposing 
code is to commence I/O emulation of the I/O device at runtime, whereby the virtual machine 
monitor is interposed on the I/O device at runtime (see Column 1: 26-34, "As is well known in 
the field of computer science, a virtual machine (VM) is a software abstraction— a 
"visualization "-of an actual physical computer system. As such, each VM will typically include 
a virtual CPU, a virtual mass storage disk, a virtual system memory, a virtual operating system 
(which may simply be a copy of a conventional operating system), and various virtual devices 
such as a network connector, in which case the virtual operating system will include 
corresponding drivers. "; Column 7: 18-22, "For example, the VMM may be set up with a 
module that emulates a standard Ethernet network device, whereas the underlying, actual, 
physical network connection may be something else. "). 

As per Claim 41, Nelson discloses: 

hardware, the hardware including memory, the memory encoded with code for 
virtualizing the hardware, and code for devirtualizing the hardware at runtime, wherein runtime 
includes a period of execution in the computer after booting and before shutdown (see Figure 1: 



Application/Control Number: 10/676,557 Page 32 

Art Unit: 2191 

1 30; Abstract, "The COS is used to boot the system as a whole. After booting, the kernel is 
loaded ..." and "In the preferred embodiment of the invention, at least one virtual machine (VM) 
runs via a virtual machine monitor, which is installed to run on the kernel. "; Column 3: 1-16, 
"The primary procedures that the system according to the invention performs are: 1) Initializing 
the computer using a first operating system (COS), which may be a commodity operating system 
...2) loading a kernel via the COS, the kernel forming a second operating system; 3) starting 
execution of the kernel ..." and 48-50, "In the preferred embodiment of the invention, at least 
one virtual machine (VM) is installed to run on the kernel via a virtual machine monitor 
(VMM). "; Column 5: 18-25, "In particular, during the unloading procedure, the step of 
reinstating the state of the first operating system involves the following sub-steps: first, restoring 
interrupt and fault handling from the kernel to the first operating system; second, transferring 
control of host-managed and shared devices from the kernel to the first operating system; and 
third, removing the kernel from an address space of the first operating system. "). [Examiner's 
Remarks: Note that the virtual machine monitor is run on the kernel and the kernel is loaded after 
booting of the computer system. Thus, one of ordinary skill in the art would readily comprehend 
that after the kernel is unloaded, the virtual machine monitor is no longer running and thereby, is 
in effect "devirtualized."] 

As per Claim 42, the rejection of Claim 41 is incorporated; and Nelson further discloses: 
- wherein the hardware further includes a CPU; and wherein the devirtualizing code is 
to devirtualize the CPU at runtime (see Column 1: 26-34, "As is well known in the field of 
computer science, a virtual machine (VM) is a software abstraction— a "visualization "—of an 
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actual physical computer system. As such, each VMwill typically include a virtual CPU ... "; 
Column 5: 18-25, "In particular, during the unloading procedure, the step of reinstating the 
state of the first operating system involves the following sub-steps: first, restoring interrupt and 
fault handling from the kernel to the first operating system; second, transferring control of host- 
managed and shared devices from the kernel to the first operating system; and third, removing 
the kernel from an address space of the first operating system. "). 

As per Claim 43, the rejection of Claim 42 is incorporated; and Nelson further discloses: 
- wherein the memory is further encoded with an operating system including interrupt 
handlers; wherein the virtualizing code includes interrupt handlers; and wherein the 
devirtualizing code is to redirect interrupts from the interrupt handlers of the virtualizing code to 
the corresponding interrupt handlers of the operating system (see Column 1: 26-34, "As is well 
known in the field of computer science, a virtual machine (VM) is a software abstraction—a 
"visualization "—of an actual physical computer system. As such, each VM will typically include 
a virtual CPU, a virtual mass storage disk, a virtual system memory ... "; Column 5: 18-25, "In 
particular, during the unloading procedure, the step of reinstating the state of the first operating 
system involves the following sub-steps: first, restoring interrupt and fault handling from the 
kernel to the first operating system; second, transferring control of host-managed and shared 
devices from the kernel to the first operating system; and third, removing the kernel from an 
address space of the first operating system. "). 

As per Claim 44, the rejection of Claim 43 is incorporated; and Nelson further discloses: 
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- wherein the devirtualizing code is to restore privilege level of the operating system 
(see Column 5: 8-1 7, "It is also possible according to the invention to unload the kernel so as to 
return the computer even to the state it would have been in had the kernel never been loaded at 
all. To do this, the following procedure is carried out by the kernel itself and also by the loader 
(acting as an "unloader"): halting execution of the kernel; reinstating a state of the first 
operating system that existed before the loading of the kernel; and resuming execution of the first 
operating system at the most-privileged system level. The kernel will then be functionally 
removed from the computer. "). 

As per Claim 45, the rejection of Claim 43 is incorporated; and Nelson further discloses: 

- wherein the devirtualizing code is to enable physical memory access by the operating 
system (see Column 5: 18-25, "In particular, during the unloading procedure, the step of 
reinstating the state of the first operating system involves the following sub-steps: first, restoring 
interrupt and fault handling from the kernel to the first operating system; second, transferring 
control of host-managed and shared devices from the kernel to the first operating system; and 
third, removing the kernel from an address space of the first operating system. "). 

As per Claim 46, the rejection of Claim 41 is incorporated; and Nelson further discloses: 

- wherein the devirtualizing code is to devirtualize the memory at runtime (see Column 
1: 26-34, "As is well known in the field of computer science, a virtual machine (VM) is a 
software abstraction— a "virtualization"-of an actual physical computer system. As such, each 
VMwill typically include a virtual CPU, a virtual mass storage disk, a virtual system memory 
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... "; Column 5: 18-25, "In particular, during the unloading procedure, the step of reinstating 
the state of the first operating system involves the following sub-steps: first, restoring interrupt 
and fault handling from the kernel to the first operating system; second, transferring control of 
host-managed and shared devices from the kernel to the first operating system; and third, 
removing the kernel from an address space of the first operating system. "). 

As per Claim 47, the rejection of Claim 46 is incorporated; and Nelson further discloses: 

- wherein the virtualizing code is to allocate memory from an operating system to the 
virtualizing code; and wherein the devirtualizing code is to return the allocated memory to the 
operating system (see Column 4: 57-62, "In computers that have a segmented memory 
architecture, the memory is addressable via segment registers. The segment length for the VMM 
is then set large enough, for example, 20 megabytes, that the kernel address space may be 
mapped within the VMM address space with no need to change a corresponding segment 
register. "; Column 5: 18-25, "In particular, during the unloading procedure, the step of 
reinstating the state of the first operating system involves the following sub-steps: first, restoring 
interrupt and fault handling from the kernel to the first operating system; second, transferring 
control of host-managed and shared devices from the kernel to the first operating system; and 
third, removing the kernel from an address space of the first operating system. "). 

As per Claim 48, the rejection of Claim 46 is incorporated; and Nelson further discloses: 

- wherein the devirtualizing code is to remap physical memory and to use an operating 
system to manage address translation with respect to the devirtualized memory (see Column 4: 
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52-56, "In the preferred embodiment of the invention, which includes a VM and a VMM, the 
kernel address space, within which the kernel is stored and which is addressable by the kernel, is 
mapped into a VMM address space, within which the VMM is stored and which is addressable 
by the VMM. "). 

As per Claim 49, the rejection of Claim 41 is incorporated; and Nelson further discloses: 
- wherein the hardware includes an I/O device, wherein the virtualizing code is to 
virtualize the I/O device; and wherein the devirtualizing code is to devirtualize the I/O device at 
runtime (see Column 1: 26-34, "As is well known in the field of computer science, a virtual 
machine (VM) is a software abstraction— a "visualization "--of an actual physical computer 
system. As such, each VM will typically include a virtual CPU, a virtual mass storage disk, a 
virtual system memory, a virtual operating system (which may simply be a copy of a 
conventional operating system), and various virtual devices such as a network connector, in 
which case the virtual operating system will include corresponding drivers. "; Column 5: 18-25, 
"In particular, during the unloading procedure, the step of reinstating the state of the first 
operating system involves the following sub-steps: first, restoring interrupt and fault handling 
from the kernel to the first operating system; second, transferring control of host-managed and 
shared devices from the kernel to the first operating system; and third, removing the kernel from 
an address space of the first operating system. "). 

As per Claim 50, the rejection of Claim 49 is incorporated; and Nelson further discloses: 
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- wherein the memory is further encoded with an operating system including dual- 
mode drivers to perform direct hardware control in a first mode and communicate with device 
drivers of the virtualizing code in a second mode; and wherein the devirtualizing code is to set 
the dual-mode drivers to the first mode, and to redirect I/O interrupts from handlers in the 
virtualizing code to handlers in the operating system (see Column 6: 1-5, "The OS can directly 
access various hardware resources such as the system disk, system memory, I/O ports, input and 
display devices, various other peripherals, etc., usually using drivers installed within the OS 
itself. "; Column 19: 62-65, "Each VMM 300 preferably maintains its own interrupt descriptor 
table IDT and handler 302, which takes all interrupts that occur while the VMM world is 
running. The VMM should maintain its own IDT 302 for several reasons. "; Column 25: 19-30, 
"The VMM 300 is responsible for emulating the network device associated with the driver 223, 
which implies that it must field IN and OUT operations as well as raise interrupts. During 
initialization, the VMM's emulation module 323 also indicates to the kernel where the shared 
memory is physically located, gets the unique network address, and sets receive and transmit 
queue sizes. These steps can all be implemented using know programming techniques. Note that, 
for transmits, the VMM merely has to handle the IN operation, call the kernel to do the transmit, 
and then return the status of the transmit to the VM. For receives, the VMM needs only to raise 
an interrupt to the VM. "). 

As per Claim 51, the rejection of Claim 49 is incorporated; and Nelson further discloses: 

- wherein the devirtualizing code is to cease emulation of the I/O device at runtime (see 
Column 5: 18-25, "In particular, during the unloading procedure, the step of reinstating the 
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state of the first operating system involves the following sub-steps: first, restoring interrupt and 
fault handling from the kernel to the first operating system; second, transferring control of host- 
managed and shared devices from the kernel to the first operating system; and third, removing 
the kernel from an address space of the first operating system. "; Column 7: 18-22, "For 
example, the VMM may be set up with a module that emulates a standard Ethernet network 
device, whereas the underlying, actual, physical network connection may be something else. "). 

As per Claim 52, Nelson discloses: 

virtualize at least a portion of the computer hardware at runtime by providing a virtual 
machine monitor between the operating system and the computer hardware, wherein the 
virtualizing occurs after booting of the computer and loading of the operating system (see 
Abstract, "The COS is used to boot the system as a whole. After booting, the kernel is loaded ..." 
and "In the preferred embodiment of the invention, at least one virtual machine (VM) runs via a 
virtual machine monitor, which is installed to run on the kernel. "; Column 1: 58-64, "A VMM is 
usually a thin piece of software that runs directly on top of a host, or directly on the hardware, 
and virtualizes all, or at least some of, the resources of the machine. The interface exported to 
the VM is then the same as the hardware interface of the machine, or at least of some machine, 
so that the virtual OS cannot determine the presence of the VMM. "; Column 2: 1-7, "In some 
conventional systems, the VMM runs directly on the underlying hardware, and will thus act as 
the "host" operating system for its associated VM. In other prior art systems, the host operating 
system is interposed as a software layer between the VMM and the hardware. The 
implementation and general features of a VMM are known in the art. "; Column 3: 1-16, "The 
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primary procedures that the system according to the invention performs are: 1) Initializing the 
computer using a first operating system (COS), which may be a commodity operating system ... 
2) loading a kernel via the COS, the kernel forming a second operating system; 3) starting 
execution of the kernel ..." and 48-50, "In the preferred embodiment of the invention, at least 
one virtual machine (VM) is installed to run on the kernel via a virtual machine monitor 
(VMM). "), [Examiner's Remarks: Note that the virtual machine monitor is run on the kernel and 
the kernel is loaded after booting of the computer system. Thus, one of ordinary skill in the art 
would readily comprehend that the interposing of the virtual machine monitor occurs after 
booting of the computer system.] and 

- wherein the operating system is to be booted in the computer before virtualizing the at 
least a portion of the computer hardware at runtime (see Column 18: 10-12,, "1) Booting the 
machine. As is mentioned above, the COS brings up the machine in uniprocessor mode. Once the 
machine is booted, the kernel 600 can be loaded. "). [Examiner's Remarks: Note that the COS is 
used to boot the computer system. Then, the virtual machine monitor is interposed after the 
kernel is loaded.] 

As per Claim 53, the rejection of Claim 52 is incorporated; and Nelson further discloses: 

- wherein the computer hardware further includes a CPU, and wherein the virtual 
machine monitor and the operating system each include CPU interrupt handlers; and wherein the 
software is executable to cause privileged instructions to trap to the virtual machine monitor, and 
causes interrupts and traps to be redirected from the operating system interrupt handlers to the 
corresponding virtual machine monitor interrupt handlers (see Column 1: 26-34, "As is well 
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known in the field of computer science, a virtual machine (VM) is a software abstraction— a 
"visualization "—of an actual physical computer system. As such, each VM will typically include 
a virtual CPU ... "; Column 10: 49-55, "Worlds run at CPLO (following the nomenclature used 
in the x86 architecture), that is, with full rights to invoke any privileged CPU operations. A 
VMM, which, along with its VM, constitutes a separate world, therefore may use these privileged 
instructions to allow it to run its associated VM so that it performs just like a corresponding 
"real" computer, even with respect to privileged operations. "; Column 19: 62-65, "Each VMM 
300 preferably maintains its own interrupt descriptor table IDT and handler 302, which takes all 
interrupts that occur while the VMM world is running. The VMM should maintain its own IDT 
302 for several reasons. "). 

As per Claim 54, the rejection of Claim 53 is incorporated; and Nelson further discloses: 
- wherein the software is executable to cause the privileged instructions to trap to the 
virtual machine monitor by reducing a privilege level of the operating system, and wherein the 
software causes control to be returned to the operating system at the reduced privilege level (see 
Column 3: 5-16, "1) Initializing the computer using a first operating system (COS), which may 
be a commodity operating system. The COS itself is then running at a most-privileged, system 
level, the system level being defined as an operational state with permission to directly access 
predetermined physical resources of the computer; 2) loading a kernel via the COS, the kernel 
forming a second operating system; 3) starting execution of the kernel, the kernel thereupon 
substantially displacing the COS from the system level and itself running at the system level; and 
4) submitting requests for system resources via the kernel. "). 
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As per Claim 55, the rejection of Claim 53 is incorporated; and Nelson further discloses: 

- wherein the software is executable to cause physical memory access by the operating 
system to be disabled (see Column 50-57, "The kernel thereby separately schedules the 
execution of the COS and of each VM; the COS and the VM's thereby form separately 
schedulable and separately executing entities. Within the kernel, each schedulable is preferably 
represented entity as a corresponding "world, " where each world comprises a world memory 
region with a respective world address space in which is stored a respective world control 
thread. "). 

As per Claim 56, the rejection of Claim 52 is incorporated; and Nelson further discloses: 

- wherein the computer hardware includes memory, and wherein the virtual machine 
monitor is for causing a kernel module of the operating system to allocate a block of a memory, 
pin the block to prevent the operating system from using the block, and allocate the pinned block 
to the virtual machine monitor (see Column 1: 26-34, "As is well known in the field of computer 
science, a virtual machine (VM) is a software abstraction— a "visualization"— of an actual 
physical computer system. As such, each VMwill typically include a virtual CPU, a virtual mass 
storage disk, a virtual system memory ... "; Column 3: 22-28, "The step of loading the kernel 
then involves setting, via the loading module, the hardware instruction pointer and forwarding of 
interrupts and faults generated by the processor and by predetermined ones of the physical 
resources to point into a memory address space allocated to and controlled by the kernel. "; 
Column 4: 57-62, "In computers that have a segmented memory architecture, the memory is 
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addressable via segment registers. The segment length for the VMM is then set large enough, for 
example, 20 megabytes, that the kernel address space may be mapped within the VMM address 
space with no need to change a corresponding segment register. "). 

As per Claim 57, the rejection of Claim 52 is incorporated; and Nelson further discloses: 

- wherein the virtual machine monitor is to manage memory translation at runtime (see 
Column 4: 52-56, "In the preferred embodiment of the invention, which includes a VM and a 
VMM, the kernel address space, within which the kernel is stored and which is addressable by 
the kernel, is mapped into a VMM address space, within which the VMM is stored and which is 
addressable by the VMM. "). 

As per Claim 58, the rejection of Claim 52 is incorporated; and Nelson further discloses: 

- wherein the computer hardware further includes an I/O device; and wherein the 
software includes an operating system dual-mode driver to perform direct hardware control in a 
first mode and communicate with a corresponding device driver of a virtual machine monitor in 
a second mode; and wherein the dual-mode driver is set to the second mode when the at least the 
portion of the computer hardware is virtualized, and wherein I/O interrupts are redirected from 
interrupt handlers in the operating system to interrupt handlers in the virtual machine monitor 
(see Column 1: 26-34, "As is well known in the field of computer science, a virtual machine 
(VM) is a software abstraction— a "virtualization"—of an actual physical computer system. As 
such, each VMwill typically include a virtual CPU, a virtual mass storage disk, a virtual system 
memory, a virtual operating system (which may simply be a copy of a conventional operating 



Application/Control Number: 10/676,557 Page 43 

Art Unit: 2191 

system), and various virtual devices such as a network connector, in which case the virtual 
operating system will include corresponding drivers. "; Column 6: 1-5, "The OS can directly 
access various hardware resources such as the system disk, system memory, I/O ports, input and 
display devices, various other peripherals, etc., usually using drivers installed within the OS 
itself. "; Column 19: 62-65, "Each VMM 300 preferably maintains its own interrupt descriptor 
table IDT and handler 302, which takes all interrupts that occur while the VMM world is 
running. The VMM should maintain its own IDT 302 for several reasons. "; Column 25: 19-30, 
"The VMM 300 is responsible for emulating the network device associated with the driver 223, 
which implies that it must field IN and OUT operations as well as raise interrupts. During 
initialization, the VMM's emulation module 323 also indicates to the kernel where the shared 
memory is physically located, gets the unique network address, and sets receive and transmit 
queue sizes. These steps can all be implemented using know programming techniques. Note that, 
for transmits, the VMM merely has to handle the IN operation, call the kernel to do the transmit, 
and then return the status of the transmit to the VM. For receives, the VMM needs only to raise 
an interrupt to the VM. "). 

As per Claim 59, the rejection of Claim 52 is incorporated; and Nelson further discloses: 
- wherein the computer hardware further includes an I/O device; and wherein the 
operating system includes a dual-mode driver to perform direct hardware control in a first mode 
and communicate with a device driver of the virtual machine monitor in a second mode; and 
wherein the dual-mode driver is set to the second mode when the at least the portion of the 
computer hardware is virtualized, and wherein I/O interrupts are redirected from interrupt 
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handlers in the operating system to interrupt handlers in the virtual machine monitor (see Column 
1: 26-34, "As is well known in the field of computer science, a virtual machine (VM) is a 
software abstraction-a "virtualization"-of an actual physical computer system. As such, each 
VMwill typically include a virtual CPU, a virtual mass storage disk, a virtual system memory, a 
virtual operating system (which may simply be a copy of a conventional operating system), and 
various virtual devices such as a network connector, in which case the virtual operating system 
will include corresponding drivers. "; Column 6: 1-5, "The OS can directly access various 
hardware resources such as the system disk, system memory, I/O ports, input and display 
devices, various other peripherals, etc., usually using drivers installed within the OS itself. "; 
Column 19: 62-65, "Each VMM 300 preferably maintains its own interrupt descriptor table IDT 
and handler 302, which takes all interrupts that occur while the VMM world is running. The 
VMM should maintain its own IDT 302 for several reasons. "; Column 25: 19-30, "The VMM 
300 is responsible for emulating the network device associated with the driver 223, which 
implies that it must field IN and OUT operations as well as raise interrupts. During 
initialization, the VMM's emulation module 323 also indicates to the kernel where the shared 
memory is physically located, gets the unique network address, and sets receive and transmit 
queue sizes. These steps can all be implemented using know programming techniques. Note that, 
for transmits, the VMM merely has to handle the IN operation, call the kernel to do the transmit, 
and then return the status of the transmit to the VM. For receives, the VMM needs only to raise 
an interrupt to the VM. "). 



As per Claim 60, the rejection of Claim 52 is incorporated; and Nelson further discloses: 
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- wherein the computer hardware further includes an I/O device; and wherein the 
software is executable to cause I/O emulation of the I/O device to commence at runtime (see 
Column 1: 26-34, "As is well known in the field of computer science, a virtual machine (VM) is a 
software abstraction— a "virtualization "—of an actual physical computer system. As such, each 
VMwill typically include a virtual CPU, a virtual mass storage disk, a virtual system memory, a 
virtual operating system (which may simply be a copy of a conventional operating system), and 
various virtual devices such as a network connector, in which case the virtual operating system 
will include corresponding drivers. "; Column 7: 18-22, "For example, the VMM may be set up 
with a module that emulates a standard Ethernet network device, whereas the underlying, actual, 
physical network connection may be something else. "). 

As per Claim 62, Nelson discloses: 

devirtualize at least a portion of virtualized hardware at runtime, wherein runtime is a 
period of execution in the computer after booting and before shutdown (see Abstract, "The COS 
is used to boot the system as a whole. After booting, the kernel is loaded ..." and "In the 
preferred embodiment of the invention, at least one virtual machine (VM) runs via a virtual 
machine monitor, which is installed to run on the kernel. "; Column 3: 1-16, "The primary 
procedures that the system according to the invention performs are: 1) Initializing the computer 
using a first operating system (COS), which may be a commodity operating system ...2) loading 
a kernel via the COS, the kernel forming a second operating system; 3) starting execution of the 
kernel ..." and 48-50, "In the preferred embodiment of the invention, at least one virtual 
machine (VM) is installed to run on the kernel via a virtual machine monitor (VMM). "; Column 
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5: 18-25, "In particular, during the unloading procedure, the step of reinstating the state of the 
first operating system involves the following sub-steps: first, restoring interrupt and fault 
handling from the kernel to the first operating system; second, transferring control of host- 
managed and shared devices from the kernel to the first operating system; and third, removing 
the kernel from an address space of the first operating system. "). [Examiner's Remarks: Note 
that the virtual machine monitor is run on the kernel and the kernel is loaded after booting of the 
computer system. Thus, one of ordinary skill in the art would readily comprehend that after the 
kernel is unloaded, the virtual machine monitor is no longer running and thereby, is in effect 
"devirtualized."] 

As per Claim 63, the rejection of Claim 62 is incorporated; and Nelson further discloses: 
- wherein the virtualized hardware includes a CPU; and wherein the software causes 
the CPU to be devirtualized at runtime (see Column 1: 26-34, "As is well known in the field of 
computer science, a virtual machine (VM) is a software abstraction—a "virtualization "—of an 
actual physical computer system. As such, each VMwill typically include a virtual CPU ... "; 
Column 5: 18-25, "In particular, during the unloading procedure, the step of reinstating the 
state of the first operating system involves the following sub-steps: first, restoring interrupt and 
fault handling from the kernel to the first operating system; second, transferring control of host- 
managed and shared devices from the kernel to the first operating system; and third, removing 
the kernel from an address space of the first operating system. "). 



As per Claim 64, the rejection of Claim 63 is incorporated; and Nelson further discloses: 



Application/Control Number: 10/676,557 Page 47 

Art Unit: 2191 

- wherein the virtualized hardware further includes memory, and wherein a memory is 
further encoded with an operating system including first interrupt handlers; wherein the software 
includes second interrupt handlers; and wherein the software causes interrupts to be redirected 
from the second interrupt handlers to the corresponding first interrupt handlers (see Column 1: 
26-34, "As is well known in the field of computer science, a virtual machine (VM) is a software 
abstraction— a "visualization "—of an actual physical computer system. As such, each VM will 
typically include a virtual CPU, a virtual mass storage disk, a virtual system memory ... "; 
Column 5: 18-25, "In particular, during the unloading procedure, the step of reinstating the 
state of the first operating system involves the following sub-steps: first, restoring interrupt and 
fault handling from the kernel to the first operating system; second, transferring control of host- 
managed and shared devices from the kernel to the first operating system; and third, removing 
the kernel from an address space of the first operating system. "). 

As per Claim 65, the rejection of Claim 64 is incorporated; and Nelson further discloses: 

- wherein the software causes privilege level of the operating system to be restored (see 
Column 5: 8-1 7, "It is also possible according to the invention to unload the kernel so as to 
return the computer even to the state it would have been in had the kernel never been loaded at 
all. To do this, the following procedure is carried out by the kernel itself and also by the loader 
(acting as an "unloader"): halting execution of the kernel; reinstating a state of the first 
operating system that existed before the loading of the kernel; and resuming execution of the first 
operating system at the most-privileged system level. The kernel will then be functionally 
removed from the computer. "). 
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As per Claim 66, the rejection of Claim 64 is incorporated; and Nelson further discloses: 

- wherein the software causes physical memory access by the operating system to be 
enabled (see Column 5: 18-25, "In particular, during the unloading procedure, the step of 
reinstating the state of the first operating system involves the following sub-steps: first, restoring 
interrupt and fault handling from the kernel to the first operating system; second, transferring 
control of host-managed and shared devices from the kernel to the first operating system; and 
third, removing the kernel from an address space of the first operating system. "). 

As per Claim 67, the rejection of Claim 62 is incorporated; and Nelson further discloses: 

- wherein the virtualized hardware includes a memory, and wherein the software causes 
the memory to be devirtualized at runtime (see Column 1: 26-34, "As is well known in the field 
of computer science, a virtual machine (VM) is a software abstraction— a "visualization "—of an 
actual physical computer system. As such, each VMwill typically include a virtual CPU, a 
virtual mass storage disk, a virtual system memory ... "; Column 5: 18-25, "In particular, during 
the unloading procedure, the step of reinstating the state of the first operating system involves 
the following sub-steps: first, restoring interrupt and fault handling from the kernel to the first 
operating system; second, transferring control of host-managed and shared devices from the 
kernel to the first operating system; and third, removing the kernel from an address space of the 
first operating system. "). 

As per Claim 68, the rejection of Claim 67 is incorporated; and Nelson further discloses: 
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- wherein if a part of a memory was allocated from an operating system to a virtual 
machine monitor prior to the runtime devirtualization, the software causes the allocated memory 
to be returned to the operating system as part of the runtime devirtualization (see Column 4: 57- 
62, "In computers that have a segmented memory architecture, the memory is addressable via 
segment registers. The segment length for the VMM is then set large enough, for example, 20 
megabytes, that the kernel address space may be mapped within the VMM address space with no 
need to change a corresponding segment register. "; Column 5: 18-25, "In particular, during the 
unloading procedure, the step of reinstating the state of the first operating system involves the 
following sub-steps: first, restoring interrupt and fault handling from the kernel to the first 
operating system; second, transferring control of host-managed and shared devices from the 
kernel to the first operating system; and third, removing the kernel from an address space of the 
first operating system. "). 

As per Claim 69, the rejection of Claim 67 is incorporated; and Nelson further discloses: 

- wherein the software causes physical memory to be remapped and wherein the 
software allows an operating system to manage address translation with respect to the 
devirtualized memory (see Column 4: 52-56, "In the preferred embodiment of the invention, 
which includes a VM and a VMM, the kernel address space, within which the kernel is stored 
and which is addressable by the kernel, is mapped into a VMM address space, within which the 
VMM is stored and which is addressable by the VMM. "). 

As per Claim 70, the rejection of Claim 62 is incorporated; and Nelson further discloses: 
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- wherein the virtualized hardware includes an I/O device; and wherein the software 
causes the I/O device to be devirtualized at runtime (see Column 1: 26-34, "As is well known in 
the field of computer science, a virtual machine (VM) is a software abstraction-a 
"visualization "—of an actual physical computer system. As such, each VM will typically include 
a virtual CPU, a virtual mass storage disk, a virtual system memory, a virtual operating system 
(which may simply be a copy of a conventional operating system), and various virtual devices 
such as a network connector, in which case the virtual operating system will include 
corresponding drivers. "; Column 5: 18-25, "In particular, during the unloading procedure, the 
step of reinstating the state of the first operating system involves the following sub-steps: first, 
restoring interrupt and fault handling from the kernel to the first operating system; second, 
transferring control of host-managed and shared devices from the kernel to the first operating 
system; and third, removing the kernel from an address space of the first operating system. "). 

As per Claim 71, the rejection of Claim 70 is incorporated; and Nelson further discloses: 

- wherein the virtualized hardware further includes a memory, and wherein the memory 
is further encoded with an operating system including dual-mode drivers that perform direct 
hardware control in a first mode and communicate with virtual device drivers in a second mode; 
and wherein the software causes the dual-mode drivers to be set to the first mode (see Column 1: 
26-34, "As is well known in the field of computer science, a virtual machine (VM) is a software 
abstraction— a "virtualization"—of an actual physical computer system. As such, each VMwill 
typically include a virtual CPU, a virtual mass storage disk, a virtual system memory ... "; 
Column 6: 1-5, "The OS can directly access various hardware resources such as the system disk, 



Application/Control Number: 10/676,557 Page 51 

Art Unit: 2191 

system memory, I/O ports, input and display devices, various other peripherals, etc., usually 
using drivers installed within the OS itself. "; Column 19: 62-65, "Each VMM 300 preferably 
maintains its own interrupt descriptor table IDT and handler 302, which takes all interrupts that 
occur while the VMM world is running. The VMM should maintain its own IDT 302 for several 
reasons. "; Column 25: 19-30, "The VMM 300 is responsible for emulating the network device 
associated with the driver 223, which implies that it must field IN and OUT operations as well as 
raise interrupts. During initialization, the VMM's emulation module 323 also indicates to the 
kernel where the shared memory is physically located, gets the unique network address, and sets 
receive and transmit queue sizes. These steps can all be implemented using know programming 
techniques. Note that, for transmits, the VMM merely has to handle the IN operation, call the 
kernel to do the transmit, and then return the status of the transmit to the VM. For receives, the 
VMM needs only to raise an interrupt to the VM. "). 

As per Claim 72, the rejection of Claim 70 is incorporated; and Nelson further discloses: 
- wherein the software causes emulation of the I/O device to cease at runtime (see 
Column 5: 18-25, "In particular, during the unloading procedure, the step of reinstating the 
state of the first operating system involves the following sub-steps: first, restoring interrupt and 
fault handling from the kernel to the first operating system; second, transferring control of host- 
managed and shared devices from the kernel to the first operating system; and third, removing 
the kernel from an address space of the first operating system. "; Column 7: 18-22, "For 
example, the VMM may be set up with a module that emulates a standard Ethernet network 
device, whereas the underlying, actual, physical network connection may be something else. "). 
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(b) the invention was patented or described in a printed publication in this or a foreign eountn or in public use or on 
sale in this country, more than one year prior to the date of application for patent in the United States. 

15. Claim 61 is rejected under 35 U.S.C. 102(b) as being anticipated by US 6,075,938 
(hereinafter "Bugnion"). 

As per Claim 61, Bugnion discloses: 

computer memory encoded with an I/O driver having first and second modes of 
operation, the I/O driver operable in the first mode to interface directly between the operating 
system and the I/O device, the I/O driver operable in the second mode to interface between the 
operating system and a corresponding I/O driver of the virtual machine monitor (see Column 8: 
27-29, "The FLASH multiprocessor consists of a collection of nodes each containing a 
processor, main memory, and I/O devices. "; Column 9: 65-67, "As with processors and physical 
memory, most operating systems assume exclusive access to their I/O devices ... "; Column 11: 
48-51, "Hardware interrupts are handled directly by the VMM through its own device drivers. 
The VMM posts an interrupt to the virtual machine when the operation that it has requested 
completes. "; Column 17: 14-28, "Since kernels are normally designed to run with different 
device drivers ..." and "Fortunately, we designed the virtual machine monitor's internal device 
driver interface to simplify the integration of existing drivers written for commodity operating 
systems. "). [Examiner's Remarks: Note that the operating system accesses the I/O devices via 
the I/O device drivers (the I/O driver operable in the first mode to interface directly between the 
operating system and the I/O device) and the virtual machine monitor's internal I/O device 
drivers interface with the existing I/O device drivers of the operating system (the I/O driver 
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operable in the second mode to interface between the operating system and a corresponding I/O 
driver of the virtual machine monitor).] 

Response to Arguments 

16. Applicant's arguments with respect to Claims 19, 41, and 62 have been considered but 
are moot in view of the new ground(s) of rejection. 

In the Remarks, Applicant argues: 

a) Claim 1 has been amended to incorporate the subject matter of former dependent claim 2. 
With respect to the subject matter of claim 1, the Office Action conceded that Bugnion fails to 
disclose that the interposing occurs after booting of the computer. However, the Office Action 
cited Nelson as purportedly disclosing this element of claim 1 . 

On the other hand, if the commodity operating system (COS) 420 of Nelson were to be 
considered the operating system of claim 1, it is noted that the COS 420 communicates with the 
kernel 600 or with hardware 100. The VMM 300 in Nelson is not interposed between the COS 
420 and the kernel 600. 

In view of the foregoing, it is respectfully submitted that even if Bugnion and Nelson 
could be hypothetically combined, the hypothetical combination of the references would not 
have led to the subject matter of claim 1. Therefore, claim 1 is non-obvious over Bugnion and 
Nelson. 
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Examiner's response: 

a) Examiner disagrees. With respect to the Applicant's assertion that Nelson fails to disclose 
that the interposing occurs after booting of the computer, as previously pointed out in the Final 
Rejection (mailed on 04/16/2009) and further clarified hereinafter, the Examiner respectfully 
submits that Nelson clearly discloses that the interposing occurs after booting of the computer 
(see Abstract, "The COS is used to boot the system as a whole. After booting, the kernel is 
loaded ..." and "In the preferred embodiment of the invention, at least one virtual machine (VM) 
runs via a virtual machine monitor, which is installed to run on the kernel. "). Note that the 
virtual machine monitor is run on the kernel and the kernel is loaded after booting of the 
computer system. Thus, one of ordinary skill in the art would readily comprehend that the 
interposing of the virtual machine monitor occurs after booting of the computer system. 

Therefore, for at least the reason set forth above, the rejections made under 35 U.S.C. § 
102(e) with respect to Claims 1,31, and 52 are proper. 

In the Remarks, Applicant argues: 

b) Although Bugnion refers to device drivers, it is noted that Bugnion nowhere refers to a 
device driver that is able to operate in two different modes in the manner recited in claim 61 . As 
purportedly disclosing the subject matter of claim 61, the Office Action cited the following 
passages of Bugnion: column 11, lines 48-51; column 14, lines 38-54; and column 17, lines 14- 
28. The cited column 1 1 passage of Bugnion refers to handling hardware interrupts directly by 
the VMM through its own device drivers. The cited column 14 passage of Bugnion refers to 
adding special device drivers into the operating system. The cited column 17 passage of Bugnion 
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refers to Disco's monitor call interface reducing the complexity and overhead of accessing I/O 
devices. The cited column 17 passage also notes that the monitor call interface provides a view 
of an idealized device, and the implementation of drivers is straightforward. 

Examiner's response: 

b) Examiner disagrees. With respect to the Applicant's assertion that Bugnion nowhere 
refers to a device driver that is able to operate in two different modes, as previously pointed out 
in the Non-Final Rejection (mailed on 10/21/2008) and the Final Rejection (mailed on 
04/16/2009) and further clarified hereinafter, the Examiner respectfully submits that Bugnion 
clearly discloses "computer memory encoded with an I/O driver having first and second modes 
of operation, the I/O driver operable in the first mode to interface directly between the operating 
system and the I/O device, the I/O driver operable in the second mode to interface between the 
operating system and a corresponding I/O driver of the virtual machine monitor" (see Column 8: 
27-29, "The FLASH multiprocessor consists of a collection of nodes each containing a 
processor, main memory, and I/O devices. "; Column 9: 65-67, "As with processors and physical 
memory, most operating systems assume exclusive access to their I/O devices ... "; Column 11: 
48-51, "Hardware interrupts are handled directly by the VMM through its own device drivers. 
The VMM posts an interrupt to the virtual machine when the operation that it has requested 
completes. "; Column 17: 14-28, "Since kernels are normally designed to run with different 
device drivers ..." and "Fortunately, we designed the virtual machine monitor's internal device 
driver interface to simplify the integration of existing drivers written for commodity operating 
systems. "). Note that the operating system accesses the I/O devices via the I/O device drivers 
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(the I/O driver operable in the first mode to interface directly between the operating system and 
the I/O device) and the virtual machine monitor's internal I/O device drivers interface with the 
existing I/O device drivers of the operating system (the I/O driver operable in the second mode to 
interface between the operating system and a corresponding I/O driver of the virtual machine 
monitor). 

Therefore, for at least the reason set forth above, the rejection made under 35 U.S. C. § 
102(b) with respect to Claim 61 is proper and therefore, maintained. 

Conclusion 

17. Any inquiry concerning this communication or earlier communications from the 
Examiner should be directed to Qing Chen whose telephone number is 571-270-1071. The 
Examiner can normally be reached on Monday through Thursday from 7:30 AM to 4:00 PM. 
The Examiner can also be reached on alternate Fridays. 

If attempts to reach the Examiner by telephone are unsuccessful, the Examiner's 
supervisor, Wei Zhen, can be reached on 571-272-3708. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Any inquiry of a general nature or relating to the status of this application or proceeding 
should be directed to the TC 2100 Group receptionist whose telephone number is 571-272-2100. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
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system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 



/Q. C.I 

Examiner, Art Unit 2191 
/Anna Deng/ 

Primary Examiner, Art Unit 2191 



